CVE-2024-23802
CVSS 3.1 Score 7.8 of 10 (high)
Details
Published Feb 13, 2024
CWE ID 125
Summary
CVE-2024-23802 is a newly identified vulnerability affecting Tecnomatix Plant Simulation versions V2201 below V2201.0012 and V2302 below V2302.0006. This issue results from an out-of-bounds read issue while processing certain SPP files. An attacker can exploit this vulnerability by crafting malicious SPP files, potentially allowing them to execute code in the context of the current process.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Vendors
- Siemens AG